Sample questions

Q1. Which one of the following statements about security standards reflect the most appropriate definition?

1. Security standards are step-by-step instructions to implement a security policy
2. Security standards contains prescriptive statements, control objectives, and controls for implementing security
3. Security standards document best practices
4. Security standards are technology specific blue print diagrams

Q2. Security breach laws typically have provisions regarding who must comply with the law and additional applicable provisions. Which one of the following may not be an applicable provision?

1. Definitions of personnel information
2. Exemptions
3. What constitutes a breach
4. Requirements for certification

Q3. Which statements, among the following are published by (ISC)2 in the Code of professional ethics (this is a drag and drop type of question. Here you can draw a line from the list of answers from the left to the empty box on the right-hand side)?

Q4. A security practitioner is evaluating a privacy breach scenario for an ecommerce order placement and process setup. Choose a location where a possible privacy security breach could happen due to insecure implementation (this is a hot spot type of question. Place a tick mark in the appropriate circle).